Denial of Service Vulnerability in Acronis Cyber Protect Cloud Agent for Windows
CVE-2025-30409

5.5MEDIUM

Key Information:

Vendor: Acronis
Status: Acronis Cyber Protect Cloud Agent
Vendor: CVE Published:; 24 April 2025

What is CVE-2025-30409?

The Acronis Cyber Protect Cloud Agent for Windows is affected by a denial of service vulnerability that occurs due to the allocation of resources without limits. This flaw can lead to service interruption, resulting in significant impact on availability and performance. Users are advised to upgrade to build 39904 or later to mitigate this issue. For detailed guidance, refer to the vendor's advisory.

Affected Version(s)

Acronis Cyber Protect Cloud Agent Windows < 39904

References

https://security-advisory.acronis.com/advisories/SEC-8148

vendor-advisory

CVSS V3.0

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 24, 2025
Vulnerability Reserved
Mar 21, 2025